注意对文本进行处理,避免xss攻击。
vue
<div v-html="html"></div>
react
const html = useMemo(() => {
htmlContent = htmlContent
.replace('javascript', '')
.replace('onclick', '')
.replace('onerror', '')
.replace('url', '');
return htmlContent;
}, [htmlContent]);
<div dangerouslySetInnerHTML={{ __html: html }}></div>;